Right! Of, course. But this means that I cannot say that iptables walks through the connection table and drops the already established connections based on the new ruleset?
Sigmund > -----Original Message----- > From: Lee Evans [mailto:[EMAIL PROTECTED]] > Sent: 24. april 2002 13:45 > To: Sigmund Vegheim; [EMAIL PROTECTED] > Subject: RE: Statefull inspection > > > It depends - If you have a rule in your firewall to allow ESTABLISHED > connections through, and this comes *before* the rule to > dissalow any and > all ssh traffic, the exisiting connections will fall under > the first rule > and the connection will be allowed to continue. > > Regards > Lee > -- > Lee Evans > http://www.leeevans.org > > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED]]On Behalf Of Sigmund Vegheim > Sent: 24 April 2002 12:37 > To: [EMAIL PROTECTED] > Subject: Statefull inspection > > > Hello everyone! > > Does anybody know if it's right that iptables don't close > down established > ssh-connections through the firewall > when you implement a rule to stop this ssh traffic, and > restart iptables? > > Thanks in advance, > > ./Sigmund > > >
